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V. SUMMARY OF THE CLAIMED SUBJECT MATTER 

l^his section provides a concise explanation of the subject matter defined in each of the 
independent claims involved in the appeal, referring to the specification by page and line 
number. Each element of the claims is identified with a corresponding reference to the 
specification where applicable. The citation to passages in the specification for each claim 
element does not imply that the limitations firom the specification should be read into the 
corresponding claim element. 

Handheld and other portable computers, such as wireless devices are frequently used for 
both business and personal needs. The wireless devices may be personally owned by users, or 
owned by a corporation. Regardless of who owns the wireless device, it may be likely to come 
into contact with corporate data such as contact lists, calendar entries, and email. The wireless 
device may be likely to come into contact with personal data outside of the corporation. In 
addition to the corporation and user, a wireless carrier will also have an interest in the device 
regarding the wireless communications. Each stakeholder that has aii interest in the wireless 
device may be in conflict with the interests of other stakeholders. For example, allowing a 
personal device access to the corporate network presents security risks. Also, the wireless carrier 
may have an interest in controlling the traffic flow to or from the device. The conflicting 
interests of the stakeholders may be protected by creating domains for each stakeholder. 

The present application discloses a system and method for secure control of resources of 
wireless mobile communication devices. While the present system and method may include 
accessing resources, the resources are logically separated in domains, such that entities in a first 
domain may not access the resources of a second domain. 
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Claim 1 recites a wireless mobile communication device, see, e.g., Application at p. 6, 11, 
10-14, comprising: at least one memory storing a first domain, see, e.g., Application at p. 6, 1. 24 
- p. 7, 1. 16, comprising a first set of assets each sharing a first level of trust, see, e.g., 
Application at p. 9, 11. 19-29, and the at least one memory storing a second domain comprising a 
second set of assets each sharing a second level of trust, wherein the first level of trust is 
different than the second level of trust; see, e.g.. Application at p. 11, 11. 22-31, and a domain 
controller configured to control the first domain and the second domain, and further configured 
to control access to the first set of assets and the second set of assets; wherein the domain 
controller is father configured to receive a request to perform an operation affecting a particular 
asset in the first set of assets and to determine whether the request originated fi-om a first entity 
that has a first trust relationship with the first domain, see, e.g.. Application at p. 24, 1. 29 - p. 25, 
1. 20, and wherein the domain controller is further configured to permit completion of the 
operation affecting the particular asset only if the request originated fi-om the first entity, and 
wherein the domain controller is fiirther configured to permit the first entity to perform 
operations with respect to each of the first set of assets, see, e.g., Application at p. 25, 1. 21 ~ p. 
26, 1. 16. 

Claim 1 1 recites a method for secure control of a wireless mobile communication device, 
see, e.g., Application at p. 6, 11. 10-14, comprising segregating a plurality of assets of tiie wireless 
mobile communication device into a first set of assets in a first domain and into a second set of 
assets in a second domain, see, e.g., Application at p. 9, 11. 19-29, wherein the first set of assets 
includes at least two different types of assets, wherein the first set of assets share a first level of 
tnist to access, wherein the second set of assets share a second level of tmst to access, and 
wherein the first level of tiaist is different than the second level of trust; see, e.g., Application at 
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p. ii, il. 22-31, receiving a request from a first entity to perform an operation affecting at least 
one of the first set of assets; see, e.g., Application at p. 24, 1. 29 - p. 25, 1. 20, determining, via a 
domain controller configured to control the first domain and the second domain, whether the 
operation is permitted by the first domain, wherein the operation is permitted by the first domain 
if the first entity has a first trust relationship with the first domain and further wherein the first 
entity is allowed to perform operations witli respect to each of the first set of assets; and allowing 
the operation to be completed only if the operation is permitted by the first domain, see, e.g., 
Application at p. 25, 1. 21 - p. 26, 1. 16. 

Claim 26 recites a computer readable medium storing program code, see, e.g, 
Application at p. 33, 11. 7-18, which, when executed by a processor, performs a method for 
secure control of a wireless mobile communication device, see, e.g.. Application at p. 6, 11. 10- 
14, the method comprising: segregating a plurality of assets of the wireless mobile 
communication device into a first set of assets in a first domain and into a second set of assets in 
a second domain, see, e.g., Application at p. 9, 11. 19-29, wherein the first set of assets includes at 
least two different types of assets, wherein the first set of assets share a first level of trust to 
access, wherein the second set of assets share a second level of trust to access, and wherein the 
first level of trust is different than the second level of trust; see, e.g., Application at p. 1 1, 11. 22- 
31, receiving a request from a first entity to perform an operation atTecting at least one of the 
first set of assets; see, e.g., Application at p. 24, 1. 29 - p. 25, 1. 20, determining, via a domain 
controller configured to control the first domain and the second domain, whether the operation is 
pennitted by the first domain, wherein the operation is permitted by the first domain if the first 
entity has a first trust relationship with the first domain and fiirther wherein the first entity is 
allowed to perform operations with respect to each of the first set of assets; and allowing the 
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operation to be completed only if the operation is permitted by the first domain, see, e,g., 
Application at p. 25, 1.21 -p. 26, 1. 16. 



VII. ARGUMENTS 

The cited art, namely U.S. Patent Application Publication 2003./0065676 (Gbadegesin), 

discloses a method and system of managing concurrent access to multiple resources. 

Specifically, Gbadegesin creates resource sets within a computer and defines access control lists 

for the resource sets. Principals may access the resource sets based upon the access control lists. 

Gbadegesin defines principals as entities that may be given peimission to perform certain 

operations. Gbadegesin also creates virtual machines on the computer, such that principals on 

one virtual machine may access resources on a second virtual machine. 

A. To anticipate claims 1, 3-11, and 19-28, Gbadegesin must teach each and every 
element of independent claims 1, 11, and 26. 

Claims 1, 3-11, and 19-28 stand rejected under 35 U.S.C. § 102(b) as being anticipated 

by Gbadegesin. Claims 3-10, 21-23, and 25 depend from independent claim 1, claims 19, 20, 
and 24 depend from independent claim 1, and claims 27 and 28 depend from independent claim 
26. Thus, claims 1, 3-11, and 19-28 stand or fall on the application of Gbadegesin to 
independent claims 1, 11, and 26. According to the Court of Appeals for the Federal Circuit, 
"[a] claim is anticipated only if each and every element as set forth in the claim is found, either 
expressly or inherently described, in a single prior art reference." Verdegaal Bros. v. Union Oil 
Co. oj California, 2 USPQ2d 1051, 1053 (Fed. Cir. 1987). The Appellant respectfully asserts 
that Gbadegesin fails to teach each and every element of independent claims 1, 11, and 26, and 
consequently fails to anticipate claims 1, 3-11, and 19-28. 
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B. Even if Gbadegesin's virtual machines are isiterpreted as domaiss, Gbadegesin 
fails to anticipate claims 1, 3-11, and 19-28 because Gbadegesin fails to teach a first 
domain with a first level of trust and a second domain with a second level of trust, 

wherein the first level of tnist only allows operations within the first domain 

Gbadegesin fails to anticipate claims 1, 3-11, and 19-28 because Gbadegesin fails to 
teach a first domain comprising a first set of assets each sharing a first level of trust, and a 
second domain comprising a second set of assets each sharing a second level of trust, wherein 
the first level of trust only allows operations within the first domain. Claims 1, 11, and 26 read: 

I. A wireless mobile communication device, comprising: 
gt jestst o»e M emory storing. ftJtrMjMX!jli^ 

assets each sharing a fi r st level of ,tr«?^t and th^at lea^i mx^ msmm.^mM&M 
second domaiB coioprlsing a s^cgftd set of assets.eacb. shariiaLaJgg^^ 
of trust, wherein the first level of trust is different than the second level ot trust; 

a domain controller configured to control the first domain and the second 
domain, and fiirther configured to control access to the first set of assets and the 
second set of assets; 

wherein the domain controller is forther configured to receive a request to 
perform an operation affecting a particular asset in the first set of assets and to 
determine whether the request originated from a first entity that has a first trust 
relationship with the first domain; and ^ 

wherein the_dMlM«»£<^^ 
completion of tbeiHm«»«i'LMk£lmS.Ji»^^ 

mjffnated inmi the first eniin;, and wherein the domain coBtroiier is foither 
configured to permit the first entity to perform operations with respect to each of 
the first set of assets. 

II, A method for secure control of a wireless mobile communication 
device, comprising: . 

device inSTa fsrs ji^et of assets in a first dom^un »ntLintiL^^Hm€l!li!l^^ 
m a"$<>eona domain, wherein the first set of a.s?et? includes at least two dificreni 
types of assets, wherein the fu:st set of assets share a first level of trust to access, 
wherein the second set of assets share a second level of trust to access, and 
wherein the first level of trust is different than the second level of trust; 

receiving a request from a first entity to perform an operation affecting at 
least one of the first set of assets; 

determining, via a domain controller configured to control the first domain 
and the second domain, whether the operation is permitted by the first domain, 
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first trust relatloHship with the fir st doniam aiid further wherein the first entity 
is aliowed to perform operations with respect to each of the first set of assets; and 
aliowmg the operation to be eompkted only if the operation is 
permitted by the first domam . 

26. A computer readable medium storing program code which, when 
executed by a processor, performs a method for secure control of a wireless 
mobile communication device, tlie method comprising: 

segregating a isinratHv of as^^ ets of the wireless mobikjC ftt^im .«»k«yM 

in a second domain, wherein the first set of assets includes at least two different 
types of assets, wherein the first set of assets share a first level of trust to access, 
wherein the second set of assets share a second level of trust to access, and 
wherein the first level of tiust is different than the second level of tiiist; ^ 

receiving a request fiom a tir»-^ er:it\ to ^e-fofin -^i op. shn \"Wc\.i^ at 
least one of the first set of assets; 

deteinuwns via a domain coni .^1 . > m i a. to control the fust doma.n 
and the S.XO-1J ,'oiiiain, whether ok . u v ruled by the first domain. 

ji^^Tmust ul4tim iAgJlijM ih> Ui^i hm^i^ o .Aiv %^he-e'n the irsi entit> 
is allowed to perform opeiatio i i <- ' oi n firsi sei ct a sets, and 

permitted bv the first domain. 

(Emphasis added). As sho^TO above, claims 1, 11, and 26 require a first domain comprising a 
first set of assets each sharing a first level of trust, and a second domain comprising a second set 
of assets each sharing a second level of trust, wherein the first level of trust only allows 
operations within the first domain. In contrast, Gbadegesin's computer comprises a plurality of 

virtual machines: 

To practice- the method iUustraied with respect to IIG. 2, n^M^ ^I.O.mI 
macMgcs, are. hns^ch^-d. as shim n m nG. Xmi'JMmr^SlSM^ 
computiT Nvstcm au>i>l0vm^^ o|...ljH\..uiveKjj<m' 3, a 

computer 300 originally comprises two resource sets, resource set A 340 and 
resource set B 360. The computer has two virtual machines, each of which is 
associated with one resource set. In particular, virtual machine A (VMA) 311 and 
virtual machine B (VMB) 312 are associated with resoui-ce set A 340 and 
resource set B 360, respectively. Unprivileged application A 321 and privileged 
application B 322 ai-e assigned to VMA and are running on a desktop A 331 
operated bv VMA. A desktop represents a visual workspace that is accessed 
tlirough a graphical user interface. Unprivileged application C 323 is assigned to 
VMB and is running on a desktop B 332 operated by VMB. Although Hie 
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exemplary embodiment illustrated in FIG. 3 has a desktop for each of the virtual 
machines, this is not an absolute requirement. Other embodiments with a virtual 
machine lacking a desktop or having more than one desktop are not intended to be 
excluded by FIG. 3 from the scope of the invention described herein. 

Gbadegesin, % 29 (emphasis added). As shown above, Gbadegesin 's computer system comprises 

a plurality of VMs. Gbadegesin 's, VMs each comprise access control lists, applications, and 

principals. Gbadegesin's access control lists allow certain resources to be shared from one 

virtual machine to another: 

Application instances are assigned to virtual machines, each of which is 
associated vwth a set of resources. Access control lists specify, for each principal, 
whether application instances owned by the principal can perfonB various 
resource-access operations. Specifically, an apolkatioii instaHce is termed 

iastaacer tfa<^ fttber hmd. mm &r mm mi 

allowed ^»€h f orsmrreat access, depending on circumstances such as the nature 
of the requested resources. 

Gbadegesin, f 22 (emphasis added). As shown above, Gbadegesin's access control lists allow 

nrincipals to communicate between VMs . As shown above in claims 1, 11, and 26, the first 

level of trust onlv allows ommtiom m the first domain. If the VMs are the equivalent of 

domains as suggested by the Examiner, communication between the different VMs would not be 

allowed based on the features of claims 1, 11, and 26. However, Gbadegesin's VMs 

communicate with each other. Therefore, Gbadegesin fails to teach a first domain comprising a 

first set of assets each sharing a first level of trust, a^d a second domain comprising a second set 

of assets each sharing a second level of trast wherein the first level of trust only allows 

ooeratioes within the first domain. As such, Gbadegesin fails to teach each and every element 




of claims 1, 11, and 26 and consequently fails to anticipate claims I, 3-11, and 19-28. 
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C. Gbadegesin fails to anticipate claims 1, 3-10, 21-23, and 25 because Gbadegesin 
fails to teach a domain controller configured to determine whether the request 
originated from a first entity 

Gbadegesin fails to anticipate claims 1, 3-10, 21-23, and 25 because Gbadegesin fails to 
teach a domain controller configured to determine whether the request originated from a first 
entity. Claim 1 reads: 

1 . A wireless mobile communication device, comprising: 

at least one memory storing a first domain comprising a first set of assets 
each sharing a first level of trust, and the at least one memory storing a second 
domain comprising a second set of assets each sharing a second level of trust, 
wherein the first level of trust is different than the second level of trust; and 

a domain controller configured to control the first domain and the second 
domain, and further configured to control access to the first set of assets and the 
secotidset^f assets; 

wherein the (lom^in controller is f ^t ihpt conflgjiiMio receive a request 
to perfbnn an operation aftecting a particulaf asset ») the ftpst sp\ of iissets aiid to 
dfefet^mlnfe wfeg^^ the re<ij«o?^t orisdtiated imm h first miM tmthm 8 first 
trust relationship witli the first domain; and 

wherein the domain controiler is further configured to permit completion 
of the operation affecting the pariicuiaji- assei only if the request originated from 
the first entity, and wherein the domain controller is further configured to permit 
the first entity to perform operations with respect to each of the first set of assets. 

(lin^phasis added). As shown above, claim 1 requires a domain controller configured to 

determine whether a request originated from a first entity. In contrast, Gbadegesin' s 

management facility compares permissions with access control lists: 

Thg manauc menl factlit v 38^1 <>T>er«k>^, i» part^ bv comparing the permM^^M 
&iv<?« to prmcipaK yi'th variouN acciss control tfs<s. An exemplary access 
control list A accompanying resource set A r.ta> specif}': a) that application.s rim 
by users A, B, and V may access rcscairce ^et A; b) that u^^r A ma> access 
resources Rl and R2 in resource set A, user B may access resources R2 and R3, 
and user C may access resource Rl; and c) that all three users may create new 
resources in resource set A. An exemplary access control list B accompanying 
resouice set B may specify: a) that only users B and C may access resource set B; 
b) that users B and C may access aii resources in resource set B; and c) that no 
user may create a resource in resource set B. hi addition to the access control lists, 
the management facility also maintains a record of: a) assignment relationships 
between virtual machines and application instances; and b) association 
relationships between resource sets and virtual machines. 
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Gbadegesin, % 33 (emphasis added). As showi above, Gbadegesin's management facility 
compares permissions given to principals with various access control lists. The Examiner 
incorrectly asserts tliat detennining where a request originated from is the equivalent of 
comparing permissions. The meaning of the phrase, "determine whether the request originated 
from a first entity that has a first trust relationship with the first domain" is clear and 
unambiguous. The claimed phrase takes an active step. That active step is to determine 
whether the request originated from a first entity that has a first trust relationship with the first 
domain. This claimed feature is not the same as "comparing permissions" as in Gbadegesin. For 
example, one could check to see if a principal has permission to access a resource without 
actually determining whether the request actually originated firom that principal. Making the 
determination as to origin would be an additional step. 

The Examiner asserts that, "One of ordinary skill would conquer [sic] that if a principal 
has permission to access a resource, such a request to access said resource must have 'originated' 
from an approved source." Advisory Action, p. 2. The Examiner's assertion is incorrect. As a 
non-limiting example, a request might appear to be from a principal (such as having a forged 
return address) but not actually be from the principal. Furthermore, one may check to see if a 
principle has permission to access a resource without actually determining whether the request 
originated form the principal Checking for permission, as asserted to be sho^n in Gbadegesin, 
and determining tlie origin of the request, as in claim 1, ai-e cleaiiy different. Therefore, 
Gbadegesin fails to teach a domain controller configured to determine whether the request 
originated from a first entity. As such, Gbadegesin fails to teach each and every element of 
claim 1 and consequently fails to anticipate claims 1, 3-10, 21-23, and 25, 
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D. Gbadegesin *s virtual machines arc not domains 

The Examiner asserts that Gbadegesin 's virtual machines (VMs) are the equivalent of the 
domains of claims 1, 11, and 26. See Office Action dated May 21,2010 {Office Action), pp. 3 & 
5. The Examiner admits that Gbadegesin fails to define virtual machine. See Advisory Action 
dated July 23, 2010 (Advisory Action), p. 2. The ordinary and customary meaning of a claim 
term is the meaning that the term would have to a person of ordinary skill in the art in question at 
the time of the invention, i.e., as of the effective filing date of the invention. MPEP § 
2111.01(111). Newton's Telecom Dictionary 22"^* Edition defines VM as part of a computer's 
hard disk that thinks it is another computer. Newton's goes on to say the VM thinks it is a 
complete computer and doesn't know about the "real" computer except in terms of what the 
software creating the VM chooses to share with it. Thus, a VM is software that mimics the 
performance of a hardware device. VMs may emulate an entire system platform to include 
execution of an operating system (OS). Multiple VMs typically share an underlying physical 
resource. However, each VM behaves as if it is running on the physical resource alone. VMs 
allow multiple copies of an OS to run on a single physical resource. It is noted that the VM itself 
may be programmed to tell the software running on it that other VMs exist. However, each VM 
functions as a separate physical machine, even though a plurality of VMs may be operating on a 
single physical resource. 

The Examiner chooses to define domain as "a collection of objects that share a common 
level of trust, and can be owned and controlled by a mobile device stakeholder, such as a mobile 
device user, a mobile device ovmst, a carrier or a service provider." Advisory Action, p. 2. 
Based on what one of ordinarj^ skill in the art would know of a virtual machine, and the 
definition of domain chosen by the Examiner, it is obvious that the claimed domains are not 
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virtual machines as suggested by the Examiner. Furtiiermore, the claimed domains all function 
on a wireless device. A wireless device typically runs one instance of an operating system, and 
the claimed domains would all function under one single instance of that operating system. The 
VMs as defined each ran their own instance of an operating system and function as if they were 
independent operating systems. Therefore, Gbadegesin 's VMs could not possibly be the 
equivalent of the claimed domains. 

E. Claim 2 is allowable because it depends from an allowable claim L 

Claim 2 is allowable because it depends from an aiiowable claim 1. Claim 2 stands 

rejected mider 35 U.S.C. §103(a) as being unpatentable over Gbadegesin in view of Paatero. 

Claim 2 depends from independent claim 1, which is allowable for the reasons given above. 

Thus, claim 2 is also allowable. 
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VIIL CQNCLIJSION 

The Commissioner is hereby authorized to charge payment of any further fees associated 
with any of the foregoing papers submitted herewith, or to credit any overpayment thereof, to 
Deposit Account No. 50-1515, ofConley Rose, P.C. of Texas. 



Respectfully submitted, 

CJQNLBY ROSE, P.C. 





5601 Granite Parkway, Suite 750 
Piano. Texas 75024 
Telephone: (972) 731-2288 
Facsimile: (972) 731-2289 



J. R.obert BiWYsH J.r. 
Reg. No. 45,438 
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